lucasvanlierop
commented
10 years ago Should be fixed in the next version in which the x509 parsing is done by a separate lib which only throws errors if cert could not be parsed at all (in which case the bug is in the cert itself) https://github.com/janus-ssp/php-x509-validate/blob/master/src/Janus/OpenSsl/Certificate.php#L37
...simplesamlphp[...]: 3 [fc1ad94df1] SimpleSAML_Error_Exception: Error 2 - openssl_x509_parse(): illegal ASN1 data type for timestamp ...simplesamlphp[...]: 3 [fc1ad94df1] Backtrace: ...simplesamlphp[...]: 3 [fc1ad94df1] 7 .../serviceregistry-4.0.6/vendor/simplesamlphp/simplesamlphp/www/_include.php:70 (SimpleSAML_error_handler) ...simplesamlphp[...]: 3 [fc1ad94df1] 6 builtin ...simplesamlphp[...]: 3 [fc1ad94df1] 5 .../serviceregistry-4.0.6/vendor/janus-ssp/janus/lib/OpenSsl/Certificate.php:14 (sspmod_janus_OpenSsl_Certific ate::__construct) ...simplesamlphp[...]: 3 [fc1ad94df1] 4 .../serviceregistry-4.0.6/vendor/janus-ssp/janus/lib/OpenSsl/Certificate/Utility.php:33 (sspmod_janusOpenSsl Certificate_Utility::getCertificatesFromText) ...simplesamlphp[...]: 3 [fc1ad94df1] 3 .../serviceregistry-4.0.6/vendor/janus-ssp/janus/lib/OpenSsl/Certificate/Chain/Factory.php:17 (sspmod_janus_Op enSsl_Certificate_Chain_Factory::loadRootCertificatesFromFile) ...simplesamlphp[...]: 3 [fc1ad94df1] 2 .../serviceregistry-4.0.6/vendor/janus-ssp/janus/www/get-entity-endpoints.php:59 (EntityEndpointsServer::serve ) ...simplesamlphp[...]: 3 [fc1ad94df1] 1 .../serviceregistry-4.0.6/vendor/janus-ssp/janus/www/get-entity-endpoints.php:11 (require) ...simplesamlphp[...]: 3 [fc1ad94df1] 0 .../serviceregistry-4.0.6/vendor/simplesamlphp/simplesamlphp/www/module.php:135 (N/A)